Mailinglist Archive: opensuse-bugs (6588 mails)

< Previous Next >
[Bug 1143535] VUL-1: CVE-2019-14452: sigil: directory traversal may lead to writing arbitrary files in a ZIP archive entry
  • From: bugzilla_noreply@xxxxxxxxxx
  • Date: Wed, 31 Jul 2019 07:03:19 +0000
  • Message-id: <bug-1143535-21960-VDSYCq6b7F@http.bugzilla.opensuse.org/>
http://bugzilla.opensuse.org/show_bug.cgi?id=1143535
http://bugzilla.opensuse.org/show_bug.cgi?id=1143535#c1

Alexandros Toptsoglou <atoptsoglou@xxxxxxxx> changed:

What |Removed |Added
----------------------------------------------------------------------------
Severity|Minor |Normal

--- Comment #1 from Alexandros Toptsoglou <atoptsoglou@xxxxxxxx> ---
TW already contains the latest version. Leap 15/15.1 should be affected. The
fix is available at [1]


[1]
https://github.com/Sigil-Ebook/Sigil/commit/04e2f280cc4a0766bedcc7b9eb56449ceecc2ad4

--
You are receiving this mail because:
You are on the CC list for the bug.
< Previous Next >
References